CVE-2008-0760
published 2008-02-13CVE-2008-0760: Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.4.1.0 and earlier, and Sentinel Keys Server 1.0.4.0 and earlier, allows remote…
PriorityP432medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.32%
87.1th percentile
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.4.1.0 and earlier, and Sentinel Keys Server 1.0.4.0 and earlier, allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the URI. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-6483.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| safenet | sentinel_keys_server | <= 1.0.4.0 | — |
| safenet | sentinel_protection_server | <= 7.4.1 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
GLEG Agora SCADA+ Exploit Pack
cisa_ics·2018-09-06
GLEG Agora SCADA+ Exploit Pack
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
GLEG Agora SCADA+ Exploit Pack
Last RevisedSeptember 06, 2018
Alert CodeICSA-11-096-01
## OVERVIEW
On March 15, 2011, GLEG Ltd. announced the Agora SCADA+ Exploit Pack for Immunity’s CANVAS system. CANVAS is a penetration testing framework that is extensible using CANVAS Exploit Packs. On March 25, 2011, GLEG announced it would be adding exploits for the 35 vulnerabilities released by Luigi Auriemma on March 21, 2011. The ICS-CERT has not received any reports of this tool being used for an unauthorized compromise of an actual control system installation.
ICS-CERT has prepared t
GHSA
GHSA-q2wj-hqvv-9cm2: Directory traversal vulnerability in SafeNet Sentinel Protection Server 7
ghsa_unreviewed·2022-05-01·CVSS 5.0
CVE-2008-0760 [MEDIUM] CWE-22 GHSA-q2wj-hqvv-9cm2: Directory traversal vulnerability in SafeNet Sentinel Protection Server 7
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.4.1.0 and earlier, and Sentinel Keys Server 1.0.4.0 and earlier, allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the URI. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-6483.
No detection rules found.
No writeups or analysis indexed.
http://aluigi.altervista.org/adv/sentinella-adv.txthttp://secunia.com/advisories/28863http://securityreason.com/securityalert/3646http://www.securityfocus.com/archive/1/487954/100/0/threadedhttp://www.securityfocus.com/bid/27735http://www.vupen.com/english/advisories/2008/0499http://aluigi.altervista.org/adv/sentinella-adv.txthttp://secunia.com/advisories/28863http://securityreason.com/securityalert/3646http://www.securityfocus.com/archive/1/487954/100/0/threadedhttp://www.securityfocus.com/bid/27735http://www.vupen.com/english/advisories/2008/0499
2008-02-13
Published